-
Tweets375
-
Followers66
-
Following311
-
Likes704
1 day of Linux → 3 years of Linux → 15 years of Linux
odroid-h2 , odroid-h3, and odroid-h4 are affected by #PKfail @binarly_io @OdroidH @vijaycert
People underestimate how valuable uncensored models are for automatic pipelines of all sorts. It's really hard to use censored models to do real work.
People underestimate how valuable uncensored models are for automatic pipelines of all sorts. It's really hard to use censored models to do real work.
Fun Fact: I found those signal bugs (sendmail and openssh) while writing the chapter on signals for TAOSSA. Writing stuff you think you know well helps you to discover your blind spots, and also consider new ideas!
This photo from the Eclipse is funnier when you realize that the pyramid is a Bass Pro Shop 🎣
I've been reverse engineering the xz backdoor this weekend and have documented the payload format and written a proof-of-concept exploit for the RCE. The payloads are signed with an ED448 key, so I patched my own key into the backdoor for testing. :-) github.com/amlweems/xzbot
found a critical bug that exists in every Linux boot loader signed in the past decade 🥰 github.com/rhboot/shim/co…
found a critical bug that exists in every Linux boot loader signed in the past decade 🥰 github.com/rhboot/shim/co… https://t.co/oKEl7PTUSp
@fortraofficial @Horizon3ai @stephenfewer Looking into the fix for CVE-2024-0204 and it's clear that the root issue is the path traversal "/..;/" -- this was not fixed in GoAnywhere MFT 7.4.1. However, it does appear to be fixed in 7.4.2, though another silent fix. Any CVE yet?
Is remote code execution in UEFI firmware possible? Yes it is. Meet #PixieFAIL: 9 vulnerabilities in the IPv6 stack of EDK II, the open source UEFI implementation used by billions of computers. Full details by @fdfalcon and @4Dgifts in our new blog post: blog.quarkslab.com/pixiefail-nine…
"laurie why do u always use firefox, haven't you tried..." me:
Full-chain exploits for mobile smartphones need at least four distinct vulnerabilities across full stack OS & App code to go from RCE to persistence. These bugs here are common exemplars of stage 3 vulnerability kind:
Full-chain exploits for mobile smartphones need at least four distinct vulnerabilities across full stack OS & App code to go from RCE to persistence. These bugs here are common exemplars of stage 3 vulnerability kind:
Bets on when "as an AI language model" will sneak into the first passed US legislation?
🚨NEW: Urging all organizations to review this guidance & take steps to reduce your risk to this widespread vulnerability.🙏Huge Thanks to @Boeing for providing key info for this advisory--a terrific example of operational collaboration in action: go.dhs.gov/oHd.
Given that @pdnuclei has posted a full PoC for CVE-2023-46747, we're sharing the full F5 RCE blog post now. Link is praetorian.com/blog/refresh-c…. Shout outs to @iamnoooob @rootxharsh for getting the PoC in < 72 hours and to @OrangeTsai for the inspiration! #f5 #cve202346747 #nuclei
@NSA_CSDirector While it still has a long way to go, the security industry wouldn’t be where it is today if not for the ancients publishing PoC’s and refusing to back down in the face of legal threats. It has proven invaluable for defense. It forced accountability where there was none. It was,…
I looked into "practical" applications of the Zenbleed vulnerability (CVE-2023-20593) a while back. That work turned into building a proof-of-concept for exploiting Zenbleed from Chrome using a V8 vulnerability. I wrote up a blog post on that process. vu.ls/blog/exploitin…
Here's the goods: praetorian.com/blog/qlik-sens…. We're posting a hefty amount of detections for vulnerable instances as well with this for anyone that's not sure if they've patched. If you find someone who didn't...enjoy your shell. #qlik #rce #patch #nuclei #detection #sigmarules
Here's the goods: praetorian.com/blog/qlik-sens…. We're posting a hefty amount of detections for vulnerable instances as well with this for anyone that's not sure if they've patched. If you find someone who didn't...enjoy your shell. #qlik #rce #patch #nuclei #detection #sigmarules
Lenna Bednar @BednarLenn48287
5 Followers 130 Following
Toughez @Toughez_TZl
44 Followers 5K Following
GillTrevelyan @oH2kW6H23C8s69
87 Followers 7K Following
Seighs @seighs8596
135 Followers 7K Following
Sheightough @sheightoug39337
78 Followers 5K Following
Sheteaseal @sheteaseal86683
67 Followers 5K Following
Stoale @Stoale259166
20 Followers 2K Following
Gwendolyn @Salenea198818
174 Followers 4K Following See the world on the road, and get to know yourself on the way!
Rachel @thessees4682
252 Followers 5K Following See the world on the road, and get to know yourself on the way!
Abigail @neeslul89863
18 Followers 2K Following Among the easiest things in the world, procrastination is the least effortful.
Horatio @Tashana46776909
187 Followers 4K Following See the world on the road, and get to know yourself on the way!
Lorena @neetiseau90327
283 Followers 5K Following See the world on the road, and get to know yourself on the way!
niv93208 @niv9320874187
17 Followers 255 Following
geekaren @geekaren
888 Followers 5K Following Was a Pacific NW geek, now a New England geek. Skywarn spotter. @[email protected] & @geekaren.bsky.social
🕊 @sephr
2K Followers 2K Following Goals: Defeat my enemies, optimize resource usage. Enemies: Mortality, hate, ennui. ❤️/🔁//👥 ≠ endorsement. Views are my own. 📨/🦋/🌐 ~@https://t.co/vn0MMP9kE2
Rory Stolzenberg @RoryStolzenberg
2K Followers 2K Following renewable energy tech by day. legalizing housing by night. sometimes vice versa. planning commission @ @cvillecityhall
Lisa R Young @lisayoungrisk
107 Followers 556 Following Problem-solving quant risk and resilience unicorn. Views are my own. She/her. LinkedIn: https://t.co/he0MAzDqq7
Sam Perl @SamPerl
47 Followers 538 Following
Golang Security @GolangSecurity
4K Followers 4K Following News about #golang Security and Fuzzing. Not affiliated with @golang team.
French @notareverser
904 Followers 99 Following Malware reversing | Software development | Nonsensemonger https://t.co/TJt0Vb4e3I Cocktails at @NULLphoenix ⚜💻🍸.y.at
Usman Gulzar @UsmanGulzar047
11 Followers 150 Following
Just_The_Worst @fallfromgrace66
13 Followers 191 Following I'm mostly just here to complain about companies that have done me wrong.
Timur Snoke @SecuriTimur
12 Followers 437 Following
jemma @jemma43776963
5 Followers 16 Following
Leigh Metcalf @theladyofgeek
1K Followers 1K Following Mathematician and Cybersecurity Researcher, Book Author, Speaker, co-EIC of https://t.co/rAUMR7Nhwk, works at https://t.co/BW8iDq6fyz. My views are my own, she/her.
Sid Faber @fabersl
123 Followers 58 Following robots, security, teaching, programming, tinkering...all with a emphasis on networking
David Lu!! @probablydavid
764 Followers 328 Following “Good fortune will follow if we somehow survive.” @[email protected] @[email protected] he/him
Laurie Tyzenhaus @laurietyz
29 Followers 145 Following
MadMain 007 @MadMain007
66 Followers 2K Following
Chad Newsom @chadnewsom
164 Followers 256 Following Logged out permanently. You can find me on IG @ chadrnewsom
madison | taladrane@f... @taladrane
455 Followers 670 Following putting the charisma, uniqueness, nerve, and talent back into cybersecurity one day at a time 💃 advisory database curation manager @github. she/her
Emanuele Cesena @0x0ece
2K Followers 4K Following Firedancer + Co-founder at SoloKeys @jump_firedancer | @SoloKeysSec
R3doubt @r3doubt
333 Followers 493 Following
Trent Novelly @trentnovelly
159 Followers 159 Following Mostly here for the intel. Occasionally tweets about vulnerabilities, robotics, and more...
Jeffrey J. Carpenter @droopydog500
643 Followers 2K Following
Will Dormann is on Ma... @wdormann
26K Followers 1K Following I play with vulnerabilities and exploits. I used to be here on Twitter but now I'm here: @[email protected] https://t.co/hXggdAVkSQ
Jonathan Foote @footePGH
525 Followers 260 Following Senior principal engineer at @fastly. Infosec and privacy, R&D. Tweets are my own.
KYLE @SimulationKYLE
2K Followers 4K Following Dir of Adversary Hunting @dragosinc. Podcast Host @Mules909090. Jiu-Jitsu Purple Belt. TNT. My thoughts/views.
Drifitng in the abstr... @mischief_gnome
7 Followers 1K Following
Jared Allar @jaredallar
24 Followers 328 Following
Katie🌻Moussouris (... @k8em0
110K Followers 10K Following @LutaSecurity CEO @payequitynow MIT&Harvard visiting scholar, @MasonNatSec fellow, 1/2 Chamoru, hacker @k8em0.bsky.social Legacy blue check
Kiklos @tetragonos_poll
24 Followers 1K Following
James Forshaw @tiraniddo
49K Followers 339 Following Security researcher in Google Project Zero. Author of Attacking Network Protocols. Tweets are my own etc. Mastodon: @[email protected]
Battle Programmer Yuu @netspooky
20K Followers 1K Following knuck if you buck 日本語/español OK (he/they) @tmpout @binarygolf @[email protected] (fedi) @ https://t.co/mZ77OENytt (bsky)
Jake @jkouns
3K Followers 2K Following Founder @DeadMeatSociety @RVAsec @MontpelierColl Previously @riskbased @OSVDB @DataLossDB @JMU MBA Information Security @Colts @Orioles & @Capitals Fan
Chris Sullo @chrissullo
3K Followers 317 Following Security guy. Author of Nikto. Founder of RVAsec. Sarcasm is my first language. @sullo.bsky.social
ic3qu33n @nikaroxanne
2K Followers 207 Following reverse engineer | hacker | vx artist | malware witch | my artistic process is a daemon process. @[email protected]
offensivecon @offensive_con
26K Followers 2 Following OffensiveCon Berlin is a technical international security conference focused on offensive security only. Organised by @Binary_Gecko. Stay tuned #OffensiveCon26.
Ian Beer @i41nbeer
48K Followers 147 Following
UVa Astronomy Dept. @UVaAstro
1K Followers 301 Following Astronomy Department at the University of Virginia.
ARCHIVED: Jen Easterl... @CISAJen
63K Followers 49 Following Archived: Director, CISA—America’s Cyber Defense Agency. Combat Veteran. Proud Mom. Rubik’s Cuber. Aspiring Electric 🎸. ❤️/RT ≠ endorsement
Yarden Shafir @yarden_shafir
24K Followers 311 Following A circus artist with a visual studio license
REcon @reconmtl
17K Followers 700 Following REcon: Annual reverse engineering and security conference held in Montreal.
Alex Matrosov @matrosov
19K Followers 2K Following 🔬Founder & CEO @Binarly_io, #codeXplorer, #efiXplorer, @REhints and "Rootkits and Bootkits" book. Previously worked at Nvidia, Cylance, Intel, ESET, Yandex.
LaurieWired @lauriewired
106K Followers 285 Following researcher @google; serial complexity unpacker; https://t.co/Vl1seeNgYK ex @ msft & aerospace
💻 Sherrod DeGrippo... @sherrod_im
36K Followers 7K Following Weird security voyeur. Vibe merchant. CISO of your 🩷 Official USPS fan account. 🎉 Host of THE Microsoft Threat Intelligence Podcast. I like crime actors.
P(David|Kipping) ∝ ... @david_kipping
19K Followers 287 Following Exoplanets & Exomoons, Cool Worlds Lab, Columbia University. Be kind to one another.
BINARLY🔬 @binarly_io
4K Followers 433 Following ⛓️Binarly is the world’s most advanced automated software supply chain security platform.
Tim Willis @itswillis
4K Followers 199 Following Long time listener, infrequent tweeter. Head of Project Zero @Google. Views are my own. Still reading: "Brown Bear, Brown Bear, What Do You See?"
Daniel Maslowski aka ... @OrangeCMS
2K Followers 5K Following cpuvangelist \o/ #app & #web #developer | #engineering #software, #firmware, #platforms, #systems & #interfaces
Rebecca Charbonneau @rebecca_charbon
2K Followers 530 Following Historian of Science @AIP_HQ Author of "Mixed Signals: Alien Communication Across the Iron Curtain". Find me at https://t.co/Sf6pDCeNNh
NetworkChuck @NetworkChuck
220K Followers 636 Following Believer. Beard. Coffee. Tech. Youtube. Check the link in my bio to see my latest video!
Albemarle County Poli... @ACPD_VA
8K Followers 441 Following Official account of the Albemarle County Police Department. Account not monitored 24/7. Call or text 9-1-1 to report an emergency. Non-emergencies 434-977-9041.
Samuel Groß @5aelo
24K Followers 502 Following Working on Project Zero, Big Sleep, and V8 Security. Personal account. Also @[email protected] and https://t.co/aVitnPjBie
Neil Breen @NeilBreen
59K Followers 12K Following See the 2023 website for my 6th Indie feature film "Cade-the tortured crossing". Poster and trailer. https://t.co/0CWFeobj0b . As producer, director, writer, actor.
Parisa Tabriz @laparisa
56K Followers 4K Following Browser Boss @googlechrome; Security Princess @google; former @usds; skilled at baking, eating, and hijacking cookies.
🕊 @sephr
2K Followers 2K Following Goals: Defeat my enemies, optimize resource usage. Enemies: Mortality, hate, ennui. ❤️/🔁//👥 ≠ endorsement. Views are my own. 📨/🦋/🌐 ~@https://t.co/vn0MMP9kE2
FlipperLocator @FlipperLocator
8K Followers 31 Following Automatically tweets when Flipper Zeros and accessories restock for all official vendors. Visit the website below for real-time updates. #flipperzero
The Radio Research Gr... @radio_research
8K Followers 498 Following 🇺🇸 🌏 U.S. Think tank studying #5GW (5th gen warfare) & a more interesting reality
Josh @passthehashbrwn
10K Followers 334 Following Adversarial Simulation at IBM, tweets are mine etc.
Rory Stolzenberg @RoryStolzenberg
2K Followers 2K Following renewable energy tech by day. legalizing housing by night. sometimes vice versa. planning commission @ @cvillecityhall
George Hotz 🌑 @realGeorgeHotz
300K Followers 204 Following President @comma_ai. Founder @__tinygrad__
Software Engineering ... @software_daily
25K Followers 933 Following The world through the lens of software. Podcast: https://t.co/QMrEMbBW5S Newsletter: https://t.co/ZGaqBh9fDo
Flipper Zero @flipper_zero
101K Followers 147 Following A portable multi-tool device in a toy-like body for pentesters and hardware geeks. Buy worldwide here ➡️ https://t.co/n09EKVnqri
ShenandoahNPS @ShenandoahNPS
42K Followers 30 Following The official Twitter feed of Shenandoah National Park.
AoT_Cville @AotCville
66 Followers 49 Following Suds and Space in the Commonwealth! Come learn about #astronomy, drink beer, and win prizes with friendly astronomers in the #Charlottesville area!
felix salmon @felixsalmon
180K Followers 2K Following Chief financial correspondent, Axios. Host, Slate Money. Author, The Phoenix Economy (May 9, 2023).
R. Hill @gorhill
10K Followers 112 Following
Albemarle County Fire... @AlbemarleFire
1K Followers 78 Following A unique emergency services system. Volunteer and career personnel cooperatively provide fire, rescue, and emergency medical services to the community.
Nonprofit Cyber @NonprofitCyber
687 Followers 63 Following This account is no longer monitored. Please follow us on LinkedIn to learn more about our work to support cybersecurity nonprofits.
Tracy 💎 ✨ @hackerpinup
2K Followers 704 Following Bug Huntress and Embedded dev. Actress. Singer. Bikini fitness competitor. Pole dancer. 🏙 nyc. she/her
MetaCTF @MetaCTF
2K Followers 283 Following We skill up companies through cybersecurity training. Book your CTF today: https://t.co/zzROMOZ49B
Abby Fuller @abbyfuller
45K Followers 748 Following mom. security for ec2 and friends @awscloud. not really on this hell site anymore. find me at https://t.co/lVX9XMfchS.
Tabletop Scenarios @badthingsdaily
18K Followers 1 Following THESE 👏 TWEETS 👏 ARE 👏 FICTION👏 This account tweets fictional or headline inspired breach scenarios. To play: Share opinions on prevention or response steps.
Ryan McGeehan @Magoo
6K Followers 716 Following Writes "Starting Up Security" @ https://t.co/Rv0MaSThQ1, tweets horror stories @badthingsdaily
SwiftOnSecurity @SwiftOnSecurity
405K Followers 9K Following computer security person. former helpdesk.
molly conger @socialistdogmom
131K Followers 1K Following i’m just the note taker. she/her. the cop reading this is wasting tax dollars
TAS Clips @TASNoContext
107K Followers 9 Following Clips that come from TASes. submissions open. “What is TAS?”: https://t.co/Yums5puJCO. We also have TikTok: https://t.co/u1Y7AXDo8w
Red Letter Media @redlettermedia
214K Followers 48 Following Red Letter Media is responsible for the 70 minute Phantom Menace review as well as Space Cop, Half in the Bag, and Best of the Worst. Full time frauds.Trends for United States
You might like
